- 필수 기능
- 앱 내
- 서비스 관리
- 인프라스트럭처
- 애플리케이션 성능
- 디지털 경험
- 소프트웨어 제공
- 보안
- 로그 관리
- 관리
- 인프라스트럭처
- ci
- containers
- csm
- ndm
- otel_guides
- overview
- slos
- synthetics
- tests
- 워크플로
Set up logging for your AWS Elastic Load Balancers (ELBs) to identify security issues.
Access logs allow you to analyze each TCP and HTTP request, which are useful during security audits or troubleshooting.
Follow the Enable access logs for your Classic Load Balancer docs to learn how to enable logging for your ELBs.
Run create-bucket
to create an S3 bucket that stores the ELB log files.
Note: This bucket must be created in the same region as the ELB.
aws s3api create-bucket \
--region us-west-1 \
--bucket your-elb-logging-bucket
Use the AWS Policy Generator to create a new policy.
Run put-bucket-policy
to attach the policy document to the S3 bucket.
aws s3api put-bucket-policy \
--bucket your-elb-logging-bucket \
--policy file://elb-logging-policy.json
Run modify-load-balancer-attributes
to enable logging for the selected ELB.
aws elb modify-load-balancer-attributes
--region us-west-1
--load-balancer-name YourLoadBalancerName
--load-balancer-attributes
"{\"AccessLog\":{\"Enabled\":true,\"EmitInterval\":60,\"S3BucketName\":\"your-logging-bucket\"}}"